Securing Speech Recognition Data

1. A method performed by at least one server computer in a client-server architecture including the at least one server computer and a client computer, the method comprising: accessing, by the at least one server computer, encrypted medical dictation information stored on at least one storage device; decrypting, by the at least one server computer, using a first decryption key, the encrypted medical dictation information to produce decrypted medical dictation information; performing, by the at least one server computer, speech recognition on the decrypted medical dictation information to produce an unencrypted speech recognition result; encrypting, by the at least one server computer, the unencrypted speech recognition result with an encryption key to produce an encrypted speech recognition result; sending the encrypted speech recognition result from the at least one server computer to the client computer; and discarding, by the at least one server computer, the first decryption key, the decrypted medical dictation information, and the unencrypted speech recognition result in response to sending the encrypted speech recognition result to the client computer.

2. The method of claim 1 , further comprising receiving, by the at least one server computer, the encryption key from the client computer.

3. The method of claim 1 , further comprising: generating, by the at least one server computer, a pair of keys including the encryption key and a second decryption key; and sending the second decryption key from the at least one server computer to the client computer.

4. The method of claim 1 , further comprising: generating, by the at least one server computer, a pair of keys including the encryption key and a second decryption key; receiving, by the at least one server computer, the first decryption key from the client computer in encrypted form; and decrypting, by the at least one server computer, the first decryption key using the second decryption key prior to decrypting the encrypted medical dictation information with the first decryption key.

5. The method of claim 1 , further comprising: associating, by the at least one server computer, the encrypted speech recognition result with an identifier; and sending the identifier from the at least one server computer to the client computer.

6. A server system in a client-server architecture including the server system and a client computer, the server system comprising: at least one speech recognition engine; and at least one processor programmed to: access encrypted medical dictation information from at least one storage device; decrypt the encrypted medical dictation information using a first decryption key to produce decrypted medical dictation information; instruct the at least one speech engine to perform speech recognition on the decrypted medical dictation information, thereby producing an unencrypted speech recognition result; encrypt the unencrypted speech recognition result with an encryption key to produce an encrypted speech recognition result; send the encrypted speech recognition result to the client computer; and discard the first decryption key, the decrypted medical dictation information, and the unencrypted speech recognition result in response to sending the encrypted speech recognition result to the client computer.

7. The server system of claim 6 , wherein instructing the at least one speech engine to perform speech recognition on the decrypted medical dictation information comprises providing the decrypted medical dictation information to the at least one speech recognition engine.

8. The server system of claim 6 , wherein the server system includes the at least one storage device.

9. The server system of claim 6 , wherein the encryption key is received by the server system from the client computer.

10. The server system of claim 6 , wherein the at least one processor is further programmed to: generate a pair of keys including the encryption key and a second decryption key; and send the second decryption key to the client computer.

11. The server system of claim 6 , wherein the at least one processor is further programmed to: generate a pair of keys including the encryption key and a second decryption key; receive the first decryption key from the client computer in encrypted form; and decrypt the first decryption key using the second decryption key prior to decrypting the encrypted medical dictation information with the first decryption key.

12. The server system of claim 6 , wherein the at least one processor is further programmed to: associate the encrypted speech recognition result with an identifier; and send the identifier to the client computer.

13. An adaptation server in a client-server architecture including the adaptation server and a client computer, wherein the adaptation server is configured to adapt an encrypted speech recognition model, the adaptation server comprising: at least one processor programmed to: access an encrypted speech recognition result and encrypted medical dictation information from at least one storage device on which the encrypted speech recognition result and the encrypted medical dictation information are stored; receive, from the client computer a first decryption key and a second decryption key; decrypt the encrypted speech recognition result using the first decryption key to produce a decrypted speech recognition result; decrypt the encrypted medical dictation information using the second decryption key to produce decrypted medical dictation information; adapt the encrypted speech recognition model based, at least in part, on the decrypted speech recognition result and the decrypted medical dictation information; and discard the first decryption key, the second decryption key, the decrypted speech recognition result, and the decrypted medical dictation information.

14. The adaptation server of claim 13 , wherein receiving the first decryption key and the second decryption key comprises receiving a single key as the first decryption key and the second description key.

15. The adaptation server of claim 13 , wherein the at least one processor is further programmed to: receive a third decryption key from the client computer; use the third decryption key to decrypt the encrypted speech recognition model prior to the adapting; re-encrypt the adapted speech recognition model following the adapting; and discard the third decryption key.

16. The adaptation server of claim 13 , wherein the at least one processor is further programmed to: issue a request to the client computer; and wherein the accessing the encrypted speech recognition result comprises accessing the encrypted speech recognition result in response to issuing the request.

17. The adaptation server of claim 13 , wherein the encrypted speech recognition result includes at least one edit made by a user of the client computer.

18. The adaptation server of claim 13 , wherein the at least one processor is further programmed to: generate at least one pair of keys including an encryption key and a third decryption key; decrypt the first decryption key and/or the second decryption key using the third decryption key; and discard the third decryption key after using the third decryption key in decrypting the first decryption key and/or the second decryption key.

19. The adaptation server of claim 13 , wherein the encrypted speech recognition model is a language model.

20. The adaptation server of claim 13 , wherein the encrypted speech recognition model is an acoustic model.